We have an IDM 4.5 implementation that we are trying to add a new
IP-Provider driver into. We would like to use the default wfid ID
Policy to populate the workforceID attribute for new users. Looking at
the documentation that should be pretty much default for the driver. We
have workforceID set to synch in the filter (nothing else at this
point). We have IP mapping set up for workforceID=wfid, which is a
default configuration. We have the configuration set to the correct ID
Policy container under the driver in the Driver Set. We have the driver
name correct. Everything we see looks like it properly configured and
in synch with Designer. We are doing all this locally to this driver
and do not need to provision IDs remotely so RMI is disabled.

However, when we create a new user we get the following error in the
ID-Provider driver log:


-[12/10/15 15:24:27.553]:idp ST:Start transaction.
[12/10/15 15:24:27.553]:idp ST:Processing events for transaction.
[12/10/15 15:24:27.555]:idp ST:
<nds dtdversion="4.0" ndsversion="8.x">
<source>
<product edition="Advanced" version="4.5.0.0">DirXML</product>
<contact>NetIQ Corporation</contact>
</source>
<input>
<add cached-time="20151210222427.482Z" class-name="User"
event-id="C1VTLIDMEDIRWB01#20151210222427#1#1:2c228051-d68f-4c85-a8bf-5180222c8fd6"
qualified-src-dn="O=data\OU=users\CN=gIDTest"
src-dn="\<TreeName>-DEV\data\users\gIDTest" src-entry-id="33529"
timestamp="1449786267#1"/>
</input>
</nds>
[12/10/15 15:24:27.557]:idp ST:No event transformation policies.
[12/10/15 15:24:27.557]:idp ST:Subscriber processing add for
\<TreeName>-DEV\data\users\gIDTest.
[12/10/15 15:24:27.560]:idp ST:No object matching policies.
[12/10/15 15:24:27.561]:idp ST:No object creation policies.
[12/10/15 15:24:27.561]:idp ST:No object placement policies.
[12/10/15 15:24:27.561]:idp ST:Submitting add to subscriber shim.
[12/10/15 15:24:27.562]:idp ST:No command transformation policies.
[12/10/15 15:24:27.562]:idp ST:Filtering out notification-only
attributes.
[12/10/15 15:24:27.563]:idp ST:Fixing up association references.
[12/10/15 15:24:27.563]:idp ST:No schema mapping policies.
[12/10/15 15:24:27.563]:idp ST:No output transformation policies.
[12/10/15 15:24:27.564]:idp ST:Submitting document to subscriber shim:
[12/10/15 15:24:27.564]:idp ST:
<nds dtdversion="4.0" ndsversion="8.x">
<source>
<product edition="Advanced" version="4.5.0.0">DirXML</product>
<contact>NetIQ Corporation</contact>
</source>
<input>
<add cached-time="20151210222427.482Z" class-name="User"
event-id="C1VTLIDMEDIRWB01#20151210222427#1#1:2c228051-d68f-4c85-a8bf-5180222c8fd6"
qualified-src-dn="O=data\OU=users\CN=gIDTest"
src-dn="\<TreeName>-DEV\data\users\gIDTest" src-entry-id="33529"
timestamp="1449786267#1"/>
</input>
</nds>
[12/10/15 15:24:27.567]:idp ST:IDProviderSubShim: execute
[12/10/15 15:24:27.567]:idp ST:IDProviderPubShim: addHandler()
[12/10/15 15:24:27.568]:idp ST:IDProviderPubShim: no current ID.
[12/10/15 15:24:27.568]:idp ST:IDProviderShim: *Error: policy "wfid" not
registered.*
[12/10/15 15:24:27.569]:idp ST:SubscriptionShim.execute() returned:
[12/10/15 15:24:27.569]:idp ST:
<nds dtdversion="3.6">
<source>
<product instance="ID-Provider" version="4.0.0.0">ID Provider
Driver</product>
<contact>NetIQ Corporation</contact>
</source>
<output>
<status
event-id="C1VTLIDMEDIRWB01#20151210222427#1#1:2c228051-d68f-4c85-a8bf-5180222c8fd6"
level="error">Got invalid ID "-1" from ID-Server for
"\<TreeName>-DEV\data\users\gIDTest". The ID has not been written to the
object.</status>
</output>
</nds>
[12/10/15 15:24:27.571]:idp ST:No input transformation policies.
[12/10/15 15:24:27.571]:idp ST:No schema mapping policies.
[12/10/15 15:24:27.572]:idp ST:Resolving association references.
[12/10/15 15:24:27.572]:idp ST:Processing returned document.
[12/10/15 15:24:27.573]:idp ST:Processing operation <status> for .
[12/10/15 15:24:27.573]:idp ST:
DirXML Log Event -------------------
Driver: \<TreeName>-DEV\system\Driver Set\ID-Provider
Channel: Subscriber
Object: \<TreeName>-DEV\data\users\gIDTest
Status: Error
*Message: Got invalid ID "-1" from ID-Server for
"\<TreeName>-DEV\data\users\gIDTest". The ID has not been written to the
object.*
[12/10/15 15:24:27.584]:idp ST:End transaction.-

I'm not sure what it means that wfid is not registered. The
documentation doesn't make a reference to "registering" those policies
that I have been able to find. Seeing how this is a default policy and
configuration I would have assumed it would be registered and working.


What silly little thing am I missing?


--
gdrtx
------------------------------------------------------------------------
gdrtx's Profile: https://forums.netiq.com/member.php?userid=1660
View this thread: https://forums.netiq.com/showthread.php?t=54843